3c634fdac5260dfb776351eead7ceb3c

Sharing

Copy URL Twitter E-mail

General

Target

3c634fdac5260dfb776351eead7ceb3c
Size

128KB
MD5

3c634fdac5260dfb776351eead7ceb3c
SHA1

5fa0f378edba6ab6e9c3e7766c15b530f027fbcb
SHA256

37cd085a99f1d5783ace81f8745aea921a5ead2d63566a6a2a193a67571522eb
SHA512

980fd00c831d3e693b088b434f80253553dbcc5320a36dac215004a0df1834300036a979aa114fb5d794b87eba7e30e760acd3f41c47344fa182a4eab60de45a
SSDEEP

3072:XtRUi22c5CrrYBjkMSFEOQTajKraPXnvPs0:dRUi22ccrrYBjkMA1QTXwXv

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
3c634fdac5260dfb776351eead7ceb3c

Files

3c634fdac5260dfb776351eead7ceb3c
.dll windows:5 windows x86 arch:x86

ab172e510dff4e4b33afd9a808e2afb1

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

gdi32

CreateFontW

shell32

SHEmptyRecycleBinW
DragAcceptFiles
SHGetSettings

kernel32

CloseHandle
CreateFileW
DeviceIoControl
ExitProcess
GetCurrentProcess
GetCurrentProcessId
GetCurrentThreadId
GetLastError
GetModuleHandleA
GetProcAddress
GetStartupInfoA
GetSystemTimeAsFileTime
GlobalAlloc
GlobalFree
InterlockedExchangeAdd
IsBadHugeWritePtr
LoadLibraryA
OutputDebugStringA
QueryPerformanceCounter
RtlUnwind
SetThreadContext
SetThreadPriority
SetUnhandledExceptionFilter
Sleep
TerminateProcess
UnhandledExceptionFilter
VirtualAlloc
VirtualFree
VirtualProtect
GlobalReAlloc

user32

GetSystemMetrics
GetWindowRect
LoadCursorW
LoadIconW
MoveWindow
PackDDElParam
PostQuitMessage
RegisterDeviceNotificationW
ReleaseCapture
SendMessageW
SetCapture
GetMessageW
GetClientRect
SetMenuItemInfoW
ShowWindow
TranslateAcceleratorW
TranslateMessage
UnregisterDeviceNotification
EndDialog
DispatchMessageW
DdeCreateDataHandle
CreateDialogParamW
GetMenuInfo
GetMenu
SetCursor
GetDlgItem
SetDeskWallpaper

comctl32

ImageList_ReplaceIcon
ord17
ImageList_Create

msvcrt

__p__commode
__p__fmode
__pioinfo
__set_app_type
__setusermatherr
__mb_cur_max
_cexit
_commit
_controlfp
_errno
_exit
_fileno
_iob
_isatty
_ismbblead
_itoa
_lseeki64
_read
_snprintf
_wcsicmp
calloc
exit
ferror
free
isdigit
isleadbyte
ispunct
iswctype
isxdigit
malloc
mbtowc
memset
mktime
realloc
ungetc
wcstombs
wctomb
__lc_collate_cp
__getmainargs
__badioinfo
_XcptFilter
_amsg_exit

setupapi

SetupDiGetClassDevsW
SetupDiGetDeviceInterfaceDetailW
SetupDiEnumDeviceInterfaces
SetupDiDestroyDeviceInfoList

Exports

Exports

ASet
CloseTable
HrStreamSeekCur
PszAllocW

Sections

.text
Size: 31KB - Virtual size: 31KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 63KB - Virtual size: 62KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 30KB - Virtual size: 30KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

ab172e510dff4e4b33afd9a808e2afb1

Headers

DLL Characteristics

File Characteristics

Imports

gdi32

shell32

kernel32

user32

comctl32

msvcrt

setupapi

Exports

Exports

Sections

.text Size: 31KB - Virtual size: 31KB

.rdata Size: 63KB - Virtual size: 62KB

.data Size: 30KB - Virtual size: 30KB

.rsrc Size: 2KB - Virtual size: 2KB

.text
Size: 31KB - Virtual size: 31KB

.rdata
Size: 63KB - Virtual size: 62KB

.data
Size: 30KB - Virtual size: 30KB

.rsrc
Size: 2KB - Virtual size: 2KB